SAP System Security Guide
- 6h 29m
- Alessandro Banzer, Joe Markgraf
- Rheinwerk Publishing Inc.
- 2018
If you're a Basis administrator looking to keep your SAP system under lock and key, this is the book for you! Discover information on security-relevant issues, from identity and access management to network and backend security. Then get the technical know-how to identify vulnerabilities, defend your system from internal and external threats, and pass audits. Secure your SAP system from the ground up!
- Configure application, network, and infrastructure security
- Set up identity and access management: roles, authorizations, SSO
- Strengthen the security of SAP NetWeaver systems, including SAP S/4HANA, SAP Business Suite, SAP Fiori, and more
Security Basics
Define system log on and password rules, secure transactions and clients, and learn to use the Common Cryptographic Library.
User Management
Learn to create users, define roles, and implement authorizations and authentication to ensure the right people have the right access in your system.
External Security
Make sure your system's database and infrastructure are protected from unauthorized external access using encryption, the Internet Connection Manager (ICM), the SAP Virus Scan Interface, firewalls, and more.
- Transaction locks
- CommonCryptoLib
- Single sign-on (SSO)
- Authorizations
- Transport security
- Audit logging
- Patching
- Client locking
- Secure communication
- Database security
About the Authors
Joe Markgraf is a senior cloud architect and advisor for SAP HANA Enterprise Cloud at SAP. Before joining SAP he worked as a Basis and security administrator, contributing to both small- and large-scale SAP system implementations. He holds a business degree with a focus on information system management from Oregon State University. He enjoys playing vintage video games and shooting sports with his family in Washington State.
Alessandro Banzer is the Chief Executive Officer of Xiting, LLC. He has worked in information technology since 2004, specializing in SAP in 2009. Since then, Alessandro has been involved with global SAP projects in various roles. Alessandro is an active contributor and moderator in the Governance, Risk, and Compliance space on SAP Community, as well as a speaker at SAPPHIRE, ASUG, SAPInsider, and other SAP-related events. He holds a degree in business information technology, as well as an executive master of business administration from Hult International Business School in London, UK.
In this Book
-
Introduction
-
Configuring Profiles and Parameters
-
Restricting Transactional Access
-
Securing Clients
-
Securing the Kernel
-
Managing Users
-
Configuring Authorizations
-
Authentication
-
Patching
-
Securing Transports
-
Auditing and Logging
-
Securing Network Communications
-
Configuring Encryption
-
Database Security
-
Infrastructure Security